From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 63010 invoked by alias); 10 May 2019 14:05:07 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 62995 invoked by uid 89); 10 May 2019 14:05:07 -0000 Authentication-Results: sourceware.org; auth=none X-Spam-SWARE-Status: No, score=2.0 required=5.0 tests=BAYES_50,FREEMAIL_FROM,KAM_THEBAT,RCVD_IN_DNSWL_LOW autolearn=no version=3.3.1 spammy=accounts, Administrator, H*M:yandex, Trusted X-HELO: forward104o.mail.yandex.net Received: from forward104o.mail.yandex.net (HELO forward104o.mail.yandex.net) (37.140.190.179) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Fri, 10 May 2019 14:05:05 +0000 Received: from mxback4j.mail.yandex.net (mxback4j.mail.yandex.net [IPv6:2a02:6b8:0:1619::10d]) by forward104o.mail.yandex.net (Yandex) with ESMTP id A8D57941890; Fri, 10 May 2019 17:05:01 +0300 (MSK) Received: from smtp3p.mail.yandex.net (smtp3p.mail.yandex.net [2a02:6b8:0:1472:2741:0:8b6:8]) by mxback4j.mail.yandex.net (nwsmtp/Yandex) with ESMTP id L4HJXGMk0y-51CSOEFD; Fri, 10 May 2019 17:05:01 +0300 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.ru; s=mail; t=1557497101; bh=/NhRaP7w+9tkIyItt2FlNvlZGxsbi2+/XdJHasIr+ow=; h=In-Reply-To:Subject:To:Reply-To:From:Message-ID:References:Date; b=nF7TQ9kei5HulZ4ilj9tfTGGTCHBLKumw3FTYd7iO9Yw8lkCfPNZDngHhODSkQ8+R PWN+ggnSqL0IL7pWn8XHAY/2LxGiwzXSRn18twRti0XiW2k59bNwMLoOcP1WjV8S6M OguyC6W7TflJ0VH8WxNsdmIJlLTQtoThkQWlyLEk= Authentication-Results: mxback4j.mail.yandex.net; dkim=pass header.i=@yandex.ru Received: by smtp3p.mail.yandex.net (nwsmtp/Yandex) with ESMTPSA id H1q6Ht1qeM-51GuiJ6G; Fri, 10 May 2019 17:05:01 +0300 (using TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits)) (Client certificate not present) Received: from [192.168.1.10] (HELO daemon2.darkdragon.lan) by daemon2 (Office Mail Server 0.8.12 build 08053101) with SMTP; Fri, 10 May 2019 13:54:42 -0000 Date: Fri, 10 May 2019 14:05:00 -0000 From: Andrey Repin Reply-To: cygwin@cygwin.com Message-ID: <1146833447.20190510165442@yandex.ru> To: LRN , cygwin@cygwin.com Subject: Re: How to become root/root (0/0) In-Reply-To: <3e9407d5-9a47-c863-64a4-445b2fc04050@gmail.com> References: <1529177562.20190509150945@yandex.ru> <3e9407d5-9a47-c863-64a4-445b2fc04050@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-IsSubscribed: yes X-SW-Source: 2019-05/txt/msg00086.txt.bz2 Greetings, LRN! >>> Again, there's simply no equivalent of "god user" from *NIX in Windows >>> permissions system. >> >> That's not really correct. An account that is a member of the >> Administrators local group (localized name can be different, SID is >> S-1-5-32-544) is a root/superuser equivalent. >> >> It is true that some objects have permissions that prevent Administrators >> from accessing them, but any member of Administrators can take >> ownership/change permissions/run as SYSTEM and access those objects. > IIRC, even Administrators can't run as SYSTEM. To run as SYSTEM, you need to > somehow coerce a process that runs as SYSTEM to do something for you. Usually > achieved by running a [temporary] service and having it do what you want to be > done. > Notably, SYSTEM (but not Administrator) can impersonate any other user without > needing a password Only locally. But then again, impersonation versus having an inherent god power. > (other users can only impersonate with a password - i.e. > they need to authenticate themselves). In that sense SYSTEM is the true root > (though there are other high-privilege accounts, such as Trusted Installer and > Local Service that might be able to do the same things). -- With best regards, Andrey Repin Friday, May 10, 2019 16:53:51 Sorry for my terrible english... -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple